Introduction - What is Pharming

From CastleCopsWiki

"PHARMING" is a technique used to redirect as many users as possible from the legitimate commercial websites they'd intended to visit and lead them to malicious ones. The bogus sites, to which victims are redirected without their knowledge or consent, will likely look the same as a genuine site. But when users enter their login name and password, the information is captured by criminals. Pharming involves Trojans, worms, or other technology that attack the browser address bar. Thus, when users type in a "valid" URL they are redirected to the criminals' Web sites.

Another way to accomplish the same thing is to attack the DNS system rather than individual machines. Everyone who enters what seems like a valid URL—the one that worked properly moments before—will instead be taken to the scammer's site.

DNS poisoning is a pharming threat which can cause a large group of users to be herded to bogus sites. DNS (domain naming system) translates web and e-mail addresses into numerical strings, acting like a telephone directory for the internet. If a DNS directory is "poisoned" - altered to contain false information regarding which web address is associated with what numeric string - users can be silently shuttled to a bogus website even if they type in the correct URL.

The Phishing Scam Introduction: | What is: Phishing? | Pharming? | Social Engineering? The Anatomy of a Phishing Scam: | Signs of a scam Reporting Phishing Scams: | Fried Phish Retrieving Email Source Code: | MWP | OE | Outlook | TB | Gmail | Hotmail edit this template